If this is your first visit, be sure to
check out the Forum Rules by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Re: The Social Engineering Toolkit: Creating Fake Web Sites to Own Boxes

REL1K: where can I find the source code of Java.class? I am not good at Java so decompiling is not useful to me. I just want to change the name of the Java Applet but I can't because SET comes with a pre-compiled class. Thanks..

Re: The Social Engineering Toolkit: Creating Fake Web Sites to Own Boxes

Great tutorial!!!!

I tried it in VMware between an XP SP2 and BT4 and seems to work....
Anyway, if I need to work outside my local LAN I need to modify the router settings as the LHOST shoud not be 192.168.x.x but instead a public IP address.
Do you know what kind of router setting I need to do?

Re: The Social Engineering Toolkit: Creating Fake Web Sites to Own Boxes

Good post, what an excellent time-saving App.

I'm considering implementing the email aspect of this program into a pentest. But it doesn't bind when i type in my public IP, or will it automatically do that? This will be done through WAN so I'm going with the assumption that typing in only my local IP address will be insufficient.

Re: The Social Engineering Toolkit: Creating Fake Web Sites to Own Boxes

When working with public IPs you need to make sure of a few things:
A. You have permission from the ISP (They tend to frown on public exploitation)
B. The port is properly forwarded from you router or gateway device to your attacking machine